: Evidence of what files were targeted for theft.
is an encrypted archive file that serves as a cornerstone of the North Wind challenge within the SANS Holiday Hack Challenge 2023 (KringleCon). It is a forensics-focused puzzle that requires participants to extract and analyze artifacts from a compromised workstation. Overview of the Challenge OboeGladly.7z
: Inside the archive, investigators usually find: : Evidence of what files were targeted for theft
To properly "write up" or solve this artifact, the following workflow is typically used: OboeGladly.7z
: For decoding any Base64 or obfuscated strings found inside the archive.